Aggregator

在勒索组织 Nitrogen 宣布它窃取了 8TB 数据逾 1100 万文件后，富士康证实它在北美地区的部分工厂遭遇了网络攻击，称“网络安全团队立即启动响应机制，采取多项运营措施，确保生产和交付的连续性。受影响的工厂目前正在恢复正常生产”。Nitrogen 声称它窃取的文件包括了英特尔、苹果、Google、戴尔和英伟达等公司项目相关的技术图纸。这不是富士康第一次遭遇勒索组织的网络攻击，此前 LockBit 先后在 2022 年和 2024 年攻击了富士康旗下子公司。

富士康证实遭遇网络攻击

不安全

1 month 1 week ago

在勒索组织 Nitrogen 宣布它窃取了 8TB 数据逾 1100 万文件后，富士康证实它在北美地区的部分工厂遭遇了网络攻击，称“网络安全团队立即启动响应机制，采取多项运营措施，确保生产

Scrcpy 4.0 发布：远程控制安卓手机，让 Android 应用开始有“桌面化”体验

不安全

1 month 1 week ago

CVE-2026-41050 | SUSE Rancher up to 0.15.0 authorization

VulDB Recent Entries

1 month 1 week ago

A vulnerability categorized as very critical has been discovered in SUSE Rancher up to 0.11.12/0.12.13/0.13.9/0.14.4/0.15.0. This impacts an unknown function. The manipulation results in incorrect authorization. This vulnerability is cataloged as CVE-2026-41050. The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.

vuldb.com

CVE-2026-3004 | inc2734 Snow Monkey Blocks Plugin up to 24.1.11 on WordPress cross site scripting

VulDB Recent Entries

1 month 1 week ago

A vulnerability was found in inc2734 Snow Monkey Blocks Plugin up to 24.1.11 on WordPress. It has been rated as problematic. This affects an unknown function. The manipulation leads to cross site scripting. This vulnerability is listed as CVE-2026-3004. The attack may be initiated remotely. There is no available exploit.

vuldb.com

APT-C-55（Kimsuky）组织依托GitHub+Dropbox分发恶意载荷的攻击活动分析

360威胁情报中心

1 month 1 week ago

一次看似 “正常下载” 的流程，背后是一条用 Dropbox → GitHub → PowerShell → .NET 反射串起来的分层投递链；前脚回传主机画像，后脚按需下发 AsyncRAT 插件。

CVE-2026-25705 | SUSE Rancher up to 2.11.12/2.12.8/2.13.4/2.14.0 UI Handler /var/lib/rancher/ compressedEndpoint path traversal

VulDB Recent Entries

1 month 1 week ago

A vulnerability was found in SUSE Rancher up to 2.11.12/2.12.8/2.13.4/2.14.0. It has been declared as critical. The impacted element is an unknown function in the library /var/lib/rancher/ of the component UI Handler. Executing a manipulation of the argument compressedEndpoint can lead to path traversal: '.../...//'. This vulnerability is tracked as CVE-2026-25705. The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-14767 | wpclever WPC Badge Management for WooCommerce Plugin up to 3.1.6 on WordPress Shortcode wpcbm_best_seller text cross site scripting

VulDB Recent Entries

1 month 1 week ago

A vulnerability was found in wpclever WPC Badge Management for WooCommerce Plugin up to 3.1.6 on WordPress. It has been classified as problematic. The affected element is the function wpcbm_best_seller of the component Shortcode Handler. Performing a manipulation of the argument text results in cross site scripting. This vulnerability is identified as CVE-2025-14767. The attack can be initiated remotely. There is not any exploit available.

vuldb.com

黄仁勋2026财年总薪酬较上年下降了27%

不安全

1 month 1 week ago

受股票奖励价值缩水影响，英伟达首席执行官黄仁勋在2026财年的总薪酬下降 27% 至3630万美元。据周二的监管文件显示，在截至 1月25日的财年中，作为黄仁勋薪酬中占比最大部分的股权奖励下跌36%至

GDPR十年回首：成就与挑战并存 AI时代亟待进化

安全419

1 month 1 week ago

GDPR生效十周年，树立了隐私保护文化，但面临执行不均、国际传输困局及AI带来的新挑战，亟需进化。

App+1 | 把笔记软件「装进」浏览器：SilverBullet.md

不安全

1 month 1 week ago

我试过的笔记软件可能比记过的笔记都多——这样说或许有些夸张，但自 2019 年 Roam Research 进入大众视野，各种支持双链笔记的 PKM 软件有如过江之鲫。多年来，我也辗转于各类方案、各种

Aggregator

Managed ad